SecurityRisk.eGatherer

Hi. My Norton anit-virus currently detected a security risks SecurityRisk.eGatherer and cant remove it!! It told me to visit lenovo help and support site for manual removal. So i went to the site and followed the instructions written their. It was written there that I had do download and install access support 3. So i downloaded it and installed it... but after a few days, it was still there in unresolved security risk of norton. Soi tried downloading access support 1 and 2 but still... nothing happened. Norton info about SecurityRisk.eGatherer said that SecurityRisk.eGatherer was not a malware or virus but was a security risk proned to be attacked. Please help me. I have no idea what to do. Thanks.

Attached Files:

Your Java is way out of date. this is a vulnerability for the system. You have jre1.6.0_07> current is v6u18.
Visit Java Updates Stay current as most updates are for security. Uninstall any earlier versions in Add/Remove Programs.

Has the Security Risk problem been resolved? If there any other malware-related problem?

I'd like you to run this online AV scan to make sure we haven't missed anything:Run Eset NOD32 Online AntiVirus Scanner HERE

Note: You will need to use Internet Explorer for this scan.

Tick the box next to YES, I accept the Terms of Use.

Click Start

When asked, allow the Active X control to install

Disable your current Antivirus software. You can usually do this with its Notification Tray icon near the clock.

Click Start

Make sure that the option "Remove found threats" is Unchecked, and the option "Scan unwanted applications" is checked

Click Scan

Wait for the scan to finish

Re-enable your Antivirus software.

A logfile is created and located at C:\Program Files\EsetOnlineScanner\log.txt. Please include this on your post.

Please attach the Eset logs to next reply. If it's clean and the problems have been resolved, I'll have you remove the cleaning tools and old restore points.

Attached Files:

Has the Security Risk problem been resolved? Is there any other malware-related problem?

Click to expand...

I suggest you take this off of Startup:RobloxApp.exe

You are also running a lot of useless processes that will use the system resources. You should review what you have on startup- very little needs to start on boot. Programs and apps can be started when needed. You should also review what is in Add/Remove Programs and uninstall any you no longer use. Get the Java updated-it's a security risk.

You also need to find the Norton program folder(s) and find out why you have the double entries.

If the problems are resolved:Remove all of the tools we used and the files and folders they created

Choose the radio button marked "Create a Restore Point" on the first screen then click "Next". Give the Restore Point a name then click "Create". The new Restore Point will be stamped with the current date and time. Keep a log of this so you can find it easily should you need to use System Restore.

Go to "Disk Cleanup" which can be found by going to Start > All Programs > Accessories > System Tools.

Click "OK" to select the partition or drive you desire.

Click the "More Options" Tab.

Click "Clean Up" in the System Restore section to remove all previous Restore Points except the newly created one.

Well, every time i open Norton and check the history and click unresolved security risk, SecurityRisk.eGatherer still appears. But few days ago, i restarted my pc. After restarting it, a message popped up that "your computer has just installed a security update". But the SecurityRisk.eGatherer still appears in the unresolved security risk.

And, yup, i have a lot of useless processes that i dont know how to close. I tried ending a process in task manager but afraid cause a message pops out that terminating a process can cause undesirable results including loss of data etc. How do i close them properly?

My Java has been updated and uninstalled old versions of my java just like what you told me.

Ending the process in the Task Manager isn't a good idea and isn't going to do anything except stop it until you reboot. You should 1. stop the process from starting on boot. Then 2. uninstall any program or app you don't need or use, then 3. remove the program folder. 4. Change any associated Service to either Disabled or Manual Startup.

NOTE: I'm using iPod as an example below. It is not the best example but I wanted you to understand where to look and what to do.

1. Start> Run> type in msconfig>enter> Selective Startup> Startup menu> Uncheck any process you don't want to start> when finished with all the unchecking> click on Apply> OK
(Example: you decide you don't need this to start on boot: C:\Program Files\iPod\bin\iPodService.exe so you Uncheck iPod2.Boot into Safe Mode

Restart your computer and start pressing the F8 key on your keyboard.

Select the Safe Mode option when the Windows Advanced Options menu appears, and then press ENTER.

Start> Settings> Control Panel> Add/Remove Programs> uninstall here> Close
(But you don't want to uninstall the iPod so you leave it)

3. While still in Safe Mode: access Windows Explorer using right click on Start> Explore:
Open My Computer> double click on Local Drive (C)> Programs> look for the folder for any program you uninstalled> do a right click> Delete on each folder.
Close Windows Explorer.
(And you didn't uninstall iPod so you don't delete the folder)

4. Start> Run> type in services.msc> double click the Service> Change the Startup type as follows:
For a Service related to a program you will use as needed but does no start on boot> Manual
For a Service related to a program you have uninstalled> Disable Startup type> stop Service
Close Services.
(But iPod has a Service that will start it automatically, but you want to change that: so you find this in the Services and double-click:O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe. So you take it off Automatic startup and change it to Manual instead. This way it will only run when you open the program and run it.)

Reboot the computer back into Normal Mode: NOTE: the first time you reboot after using msconfig, you get a nag message that you can ignore and close after checking 'don show this message again.' Stay in Selective Startup.

Please follow these simple steps to keep your computer clean and secure:1.Disable and Enable System Restore: This will help you to drop the old restore points and set a new, clean one: System Restore Guide

2.Stay current on updates:

Visit the Microsoft Download Sitefrequently.
You should get All updates marked Critical and the current SP updates:Windows 2000> SP4, Windows XP> SP2, SP3, Vista> SP2

Visit this Adobe Reader site often and make sure you have the most current update. Uninstall any earlier updates as they are vulnerabilities.

Check this site often.Java Updates Stay current as most updates are for security. Uninstall any earlier versions in Add/Remove Programs.

3.Make Internet Explorer safer. Follow the suggestions HERE
This Tutorial will help guide you through Configuring Security Settings, Managing Active X Controls and other safety features.

This places over 4000 websites and domains in the IE Restricted list which will severely impair attempts to infect your system. It basically prevents any downloads (Cookies etc) from the sites listed, although you will still be able to connect to the sites.

MVPS Hosts files This replaces your current HOSTS file with one containing well know ad sites etc. Basically, this prevents your computer from connecting to those sites by redirecting them to 127.0.0.1 which is your local computer.

Google Toolbar Get the free google toolbar to help stop pop up windows.